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Abstract 

We obtain a lower bound on the multiplicative order of Gauss 
periods which generate normal bases over finite fields. This bound 
improves the previous bound of J. von zur Gathen and I. E. Shparlin- 
ski. 

Nous prouvons une borne inferieure pour l'ordre multiplicatif des 
periodes de Gauss generant les bases normales sur les corps finis. Cette 
borne ameliore une borne anterieure du a J. von zur Gathen et I. E. Sh- 
parlinski. 
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1 Introduction 



For a prime power q we use ¥ q to denote the finite field with q elements. 

Normal bases are a very useful notion in the theory of finite fields, , see [5j 
[161 [T7] for the definition, basic properties and references. One of the most 
interesting constructions of normal bases come from Gauss periods, see [TJ El 
[TOj [HI [T21 13] and references therein. In particular, Gauss periods of type 
(n, 2) are of special interest, which can be defined as follows. 

Let r = 2n + 1 be a prime number coprime with q and f3 G ¥ q 2 n be a 
primitive rth root of unity. Then the element 

a = (3 + /T 1 e ¥ qn (1) 

is called a Gauss period of type (n, 2). The Gauss period of type (n, 2) can 
be defined for composite r too, see [Tj, however we do not consider them in 
this paper (neither we study Gauss period of type (n, k) for k ^ 2). 

It is well-known that the minimal polynomial of (3 over ¥ q is of degree t, 
where t is the multiplicative order of q modulo r. Thus t\2n. 

It is also well known that a given by ([T]) , generates a normal basis of ¥ g n 
if an only if gcd(2n/i, n) = 1, which, therefore, is possible if and only if 

• t — 2n — r — 1, that is, q is a primitive root modulo r; 

m t — n — (r — l)/2 and n is odd, that is, g generates the subgroup of 
quadratic residues modulo r = 3 (mod 4) 

In one direction this follows from [51 Lemma 5.4 and Theorem 5.5] and in the 
other direction it follows by examining the proof of these results see also [1] 
and [3]. 

It is shown [UJ that in the first case, that is, for t = r — 1, a is of 
multiplicative order 

L n ^ 2 v ^ + °«, (2) 

see also [T2] . This gives an explicit example of finite field elements of ex- 
ponentially large order. Here we use some new arguments to improve the 
bound p. 

Recent results of Q. Cheng [6] give polynomial time constructions of el- 
ements of large order for certain values of (q,n). Our construction seems 
to apply to different sets of pairs (q, n) and complement the results of [6] . 
Furthermore it is interesting to establish tighter bounds on the size of the 
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multiplicative order of such classical objects as Gauss periods of type (n, 2), 
especially of those which generate normal bases. 

Let P(s, v) be the number of integer partitions of an integer s where each 
part appears no more than v times, that is, the number of solutions to the 
equation 

s 

j'=i 

in non- negative integers u±, . . . , u s ^ v. 

Theorem 1. Let p be the characteristic of¥ q and let q be a primitive root 
modulo a prime r — 2n + 1. Then the multiplicative order L n of a, given 
by flU), satisfies the bound 

L n ^P(n-l,p-l). 

Now we can use some standard estimates to derive an asymptotic lower 
bound on L n . 

Corollary 2. Let p be the characteristic of¥ q and let q be a primitive root 
modulo a prime r — 2n + 1. Then, uniformly over q, the multiplicative order 
L n of a, given by ([[]), satisfies the bound 



L n ^ exp ( ( tt a / 2{P ^ ^ + o(l) ) 



as n — > oo. 



Note that in the worst case (when p = 2) exp(iry/2/6) = 6.1337... 
while exp (^K\j2j^j = 13.0019. . . (which corresponds to p — ► oo). On the 
other hand, we have 2^ = 2.6651 . . .. 

2 Proof of Theorem U 

Let us consider the set 

{n-1 
(«i, . . . , w„-i) G Z'^ 1 | ^Ujj = n-l, ui,...,u n ^p-l 



Now, for j = 1, 2, . . . , n — 1 we define an integer Zj by q Zj = j (mod r), 
^ Zj < r (which is possible since q is a primitive root modulo r). 
For every partition U = (ui, . . . , u n _i) G ^ we put 

n-l 

Qu =^Ujq z i. 

3=1 

We now consider the powers 



n-l 



taken for all hi G ^3. Since /5 r = 1, we have 

n— 1 n— 1 



n - = n ¥ + = r {n ~ i} n (^ 2j + *r • ( 3 ) 



3=1 3=1 



Clearly it suffices to show that for two distinct partitions U, V G ^ we 
have a Qu ^ a Qv . 

We now assume that there are two distinct partitions 

U = . . . , M„_i), V = (Vi, . . . , U n _i) G <p 

with 

By (JHJ) we conclude that 

n— 1 n— 1 

15(^+1)^= n^+ip- 

i=i j=i 

Since the characteristic polynomial of j3 is the r-th cyclotomic polynomial 
<P r (X), we obtain polynomial divisibility 

<ZV(X) I U(X) - V(X) (5) 

where 

re— 1 n-l 

c/po = n (x 2 ^- + , v(x) = n (x 2 ^- + 1)^ , 

3=1 3=1 



are polynomials of degree 2(n — 1) < 2n = r — 1 = deg<P r (X). (notice that 
r is a prime number and q is a primitive root modulo r) Hence (J5]) implies 
that U(X) = V(X). After removing common factors, the identity 

n— 1 n— 1 

H(xv+i) uj =n(xv+iy> 

3=1 3=1 

leads to the relation 

H(x 2k +i) yh = n(x 2k +iy k (6) 

hen. keK 

for two disjoint sets H, JC G {1, . . . ,n — 1} and some positive integers yh, 
h G H, and Zk, k & JC. Since it is now clear that 



?cd fjyh JJ^,p = 1, 



\h£H keK 



the term X 2 -^ where / is the smallest element of 7i U JC occurs only on one 
side of ([6]), which makes this identity impossible. 
Therefore (HI) cannot hold and the result follows. 



3 Proof of Corollary BS 

Unfortunately, a uniform lower bound with respect to v on P(s,v) does not 
seem to be in the literature. However, by [21 Corollary 1.3] we have 

P(s,v) = Q(s,v + l) 

where Q(s, d) is the number of integer partitions of an integer s where each 
part is not divisible by d, that is, the number of solutions to the equation 

s 

3=1 

in non- negative integers u\,...,u s such that Uj = for j = (mod d), 

j — 1, ... ,71. 
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By [T3J Corollary 7.2], applied to a set {1, . . . , {£ — l)/2} for a fixed prime 
£ (thus r = (£ — l)/2) implies that 



Q(M) £ exp H ,r^p^_!) + o(1) j (7) 

Therefore there is a function A(s) — > oo as s — > oo, such that (J7|) holds 
uniformly over all primes I ^ A(s). 

Now taking i as the largest prime with 

i ^ min{p, A(n — 1)} 

we obtain 

P(n-l,p-l) ^P(n-M-l) = Q(n-l,£). 

Applying (JTj) we obtain the desired estimate. Indeed, if I = p this is obvious. 
If £ ^ X(n — 1) < p then by the prime number theorem £ ~ A(n — 1) as 
n — > oo. Therefore, 

= 1 + Ofl/A(n - 1)) and ^— ^ = 1 + 0(l/\(n - 1)). 



4 Remarks 

It seems to be natural to use the approach of [UEE], based on the polynomial 
ABC-theorem, see [18J, in order to obtain good bounds on L n . In fact this is 
possible indeed, however it seems to lead to a result which is slightly weaker 
than the bound of Theorem HJ In fact, instead of the set ^3 one seems to 
need to consider sets of the shape 

m s {N) = | . . . , us) e z^ 1 I J2 u ii = N j 

with s ~ an 1 / 2 and iV = /3n, where a and (3 are positive constants (which 
are to be optimised). We remark that an asymptotic formula for $$K a (N) is 
given by a result of G. Szekeres [19j [20]. Using this approach we have been 
able to get a stronger bound than (j5J) but marginally weaker than that of 
Theorem [TJ Still, it seems quite plausible that a use of the polynomial ABC- 
theorem may lead to stronger bounds. We pose this as an open question. 
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